$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3139332e302e302f31382d3138203d3e2034383038.roa File: 3132342e3139332e302e302f31382d3138203d3e2034383038.roa (raw, json) Hash identifier: HW1UxtY4kQKZZlsemgzf+dW6nsoElqbt/iWZujirBNQ= Subject key identifier: F4:29:C5:91:B1:DD:F4:6F:60:63:0F:CA:AB:85:79:D1:BE:4B:3A:DF Certificate issuer: /CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Certificate serial: 5A0A327B67230D31193C246898DE0B91C6325589 Authority key identifier: AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3139332e302e302f31382d3138203d3e2034383038.roa Signing time: Mon 18 May 2026 02:28:01 +0000 ROA not before: Mon 18 May 2026 02:23:01 +0000 ROA not after: Mon 17 May 2027 02:28:01 +0000 asID: 4808 IP address blocks: 124.193.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jun 2026 19:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:0a:32:7b:67:23:0d:31:19:3c:24:68:98:de:0b:91:c6:32:55:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE487B72C4F38EA548F6721BB60B773705BD9515 Validity Not Before: May 18 02:23:01 2026 GMT Not After : May 17 02:28:01 2027 GMT Subject: CN=F429C591B1DDF46F60630FCAAB8579D1BE4B3ADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:d0:cc:00:8d:6c:1a:4e:66:9a:b9:7f:77: 48:4f:6c:e5:d2:09:ed:fa:8e:18:e5:d1:17:0c:7a: 25:2e:4e:d0:15:fc:ba:6e:a5:b0:24:5a:ae:e5:90: 7d:ef:a9:12:44:f5:5d:70:dc:74:7f:19:59:e0:2f: 64:f4:d1:44:13:1e:fb:10:64:de:5d:5e:be:4d:f9: c0:5f:c7:da:e4:ec:54:83:68:53:2b:40:89:63:ea: 2d:57:51:18:7b:f4:1e:75:46:f8:43:67:b0:a5:6d: 72:4e:be:e5:8c:75:9e:ed:44:e2:c1:db:f0:4b:57: e5:d2:8c:d9:f7:69:3d:b2:c3:51:da:f1:94:72:86: c0:89:b6:eb:73:7b:0e:2f:48:ef:90:47:ee:10:03: 45:dd:75:21:0e:2a:51:07:92:e1:6c:dc:ea:3d:ff: 8a:a2:3b:bd:ba:71:a7:6c:a7:f9:06:a2:cb:13:69: 2c:e1:a0:5e:06:c2:d1:93:3c:50:9b:28:b4:a7:ed: 50:4c:22:72:e1:69:ec:22:1e:23:ce:01:4d:9f:69: aa:57:c1:ce:22:bf:13:44:1f:3d:ac:82:a9:0d:d9: 91:31:52:cf:eb:d8:ce:98:03:03:04:5b:6e:1d:ce: 8f:25:a9:2b:5e:b0:9d:aa:7e:80:30:c8:c2:43:59: d9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:29:C5:91:B1:DD:F4:6F:60:63:0F:CA:AB:85:79:D1:BE:4B:3A:DF X509v3 Authority Key Identifier: keyid:AE:48:7B:72:C4:F3:8E:A5:48:F6:72:1B:B6:0B:77:37:05:BD:95:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/AE487B72C4F38EA548F6721BB60B773705BD9515.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/AE487B72C4F38EA548F6721BB60B773705BD9515.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065576199947943939/0/3132342e3139332e302e302f31382d3138203d3e2034383038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.193.0.0/18 Signature Algorithm: sha256WithRSAEncryption 96:0f:d0:9b:15:d2:e6:b6:8b:1b:1f:fa:6f:94:e4:13:02:bb: 25:06:58:04:7c:8a:d7:2e:ea:d5:a2:ce:b2:84:f3:13:87:c6: 53:b9:e1:04:d3:7d:b3:db:8a:75:55:d1:c4:26:73:f4:c9:0f: d7:f6:d0:af:07:4e:5d:79:98:67:90:65:86:1a:c3:b0:6a:84: a2:19:1c:81:fe:0a:ce:81:80:b4:b1:24:f3:47:0f:58:17:2d: 8b:ec:88:f2:55:44:44:55:78:d0:77:34:b5:24:bb:ef:e8:32: 11:f1:3f:d1:c1:00:cc:d0:79:bd:10:d5:62:87:84:ae:5a:01: 1b:42:f0:b6:c3:63:01:2c:fe:a8:74:87:b2:2e:f2:be:ad:30: 1a:f8:4f:75:a1:ac:88:cc:9a:81:7c:98:8c:3f:2b:94:72:f3: c4:78:ec:ac:e8:1a:be:cc:09:2e:b4:41:a1:41:37:b9:90:03: 3a:dc:2d:00:1e:b7:58:a0:fa:62:fd:66:04:34:a3:b4:c4:21: 13:81:40:2a:b8:8c:71:32:55:42:87:cf:a0:78:fe:cf:62:6a: 26:af:3a:15:3f:7b:92:dd:61:33:2d:26:61:b3:a3:49:c2:27: 0d:0c:14:7a:4f:ce:b2:23:a3:c4:e8:28:49:eb:e0:93:08:72: a6:09:6c:5c -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIUWgoye2cjDTEZPCRomN4LkcYyVYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3Mzcw NUJEOTUxNTAeFw0yNjA1MTgwMjIzMDFaFw0yNzA1MTcwMjI4MDFaMDMxMTAvBgNV BAMTKEY0MjlDNTkxQjFEREY0NkY2MDYzMEZDQUFCODU3OUQxQkU0QjNBREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEaNDMAI1sGk5mmrl/d0hPbOXS Ce36jhjl0RcMeiUuTtAV/LpupbAkWq7lkH3vqRJE9V1w3HR/GVngL2T00UQTHvsQ ZN5dXr5N+cBfx9rk7FSDaFMrQIlj6i1XURh79B51RvhDZ7ClbXJOvuWMdZ7tROLB 2/BLV+XSjNn3aT2yw1Ha8ZRyhsCJtutzew4vSO+QR+4QA0XddSEOKlEHkuFs3Oo9 /4qiO726cadsp/kGossTaSzhoF4GwtGTPFCbKLSn7VBMInLhaewiHiPOAU2faapX wc4ivxNEHz2sgqkN2ZExUs/r2M6YAwMEW24dzo8lqStesJ2qfoAwyMJDWdlfAgMB AAGjggIPMIICCzAdBgNVHQ4EFgQU9CnFkbHd9G9gYw/Kq4V50b5LOt8wHwYDVR0j BBgwFoAUrkh7csTzjqVI9nIbtgt3NwW9lRUwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NjE5OTk0Nzk0MzkzOS8wL0FFNDg3QjcyQzRGMzhFQTU0OEY2NzIxQkI2MEI3 NzM3MDVCRDk1MTUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvQUU0ODdCNzJDNEYzOEVBNTQ4RjY3MjFCQjYwQjc3MzcwNUJEOTUxNS5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc2MTk5OTQ3OTQzOTM5LzAvMzEzMjM0MmUzMTM5 MzMyZTMwMmUzMDJmMzEzODJkMzEzODIwM2QzZTIwMzQzODMwMzgucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAZ8wQAwDQYJKoZIhvcNAQELBQADggEBAJYP0JsV0ua2ixsf+m+U5BMCuyUGWAR8 itcu6tWizrKE8xOHxlO54QTTfbPbinVV0cQmc/TJD9f20K8HTl15mGeQZYYaw7Bq hKIZHIH+Cs6BgLSxJPNHD1gXLYvsiPJVRERVeNB3NLUku+/oMhHxP9HBAMzQeb0Q 1WKHhK5aARtC8LbDYwEs/qh0h7Iu8r6tMBr4T3WhrIjMmoF8mIw/K5Ry88R47Kzo Gr7MCS60QaFBN7mQAzrcLQAet1ig+mL9ZgQ0o7TEIROBQCq4jHEyVUKHz6B4/s9i aiavOhU/e5LdYTMtJmGzo0nCJw0MFHpPzrIjo8ToKEnr4JMIcqYJbFw= -----END CERTIFICATE-----Generated at Fri Jun 12 02:23:35 2026 by rpki-client